Last month, security experts found adware and data-stealing malware in the Google Play Store, with at least five threats still available and more than 2 million downloads.
Infection of adware showing unwanted ads can degrade the user experience, use batteries, generate heat and even lead to fraudulent transactions.
This software usually tries to blend into the host machine as something different, and the only way for its developers to make money is by forcing the target to see or click affiliate ads.
The data-stealing Trojan, on the other hand, is much more malicious, snatching login information from other websites you visit, such as social media and online banking accounts.
Entering the Google Play Store
According to security experts at software company Dr. Webb, adware applications and data-stealing Trojans are among the most common threats to affect Android in May 2022.
The stars of their report are spyware apps that can steal one-time 2FA passcodes (OTPs) and collect data from other apps’ notifications in order to gain access to the accounts.
Of the numerous threats that found their way into the Google Play Store, the following are still available:
PIP Pick Camera Photo Editor – 1 million downloads, malware disguised as an image-editing application that steals users’ Facebook login credentials.
Wild and exotic animal wallpapers – 500,000 downloads, an adware trojan that changes its icons and titles to “SIM tool kit” and adds itself to the list of battery-saving exceptions.
ZodiHoroscope – fortune teller – 500,000 downloads, malware that steals Facebook login information and tricks users into accessing it, has been reported to remove in-app ads.
PIP Camera 2022 – 50,000 downloads, camera effects app that also works as a Facebook account hijacker.
Magnifier flashlight – 10,000 downloads, adware apps that serve video and static banner ads.
According to recent user reviews, these apps continue to display malicious behavior and fail to deliver their feature promises.
Other applications discovered by Dr. Webb’s antivirus team in the Play Store in May 2022 include:
- A racing game,
- A deleted image recovery tool,
- A fake state compensation application aimed at Russian users,
- A “free access” app for the fan platform only.
Although these apps have been removed from the Play Store, users who have installed them on their device should uninstall them and run a full antivirus scan to remove the remnants of malware.
Hydra malware is also available in the Google Play Store
Hydra malware, which has recently been targeted at banking customers in Europe, has also been discovered in the Google Play Store, according to researchers at the threat intelligence agency Siebel.
The Banking Trojan, which pretended to be a PDF document manager with text-to-PDF and QR code scanning capabilities, has received 10,000 downloads.
According to BleepingComputer, the malicious app was available in the Play Store until June 9, 2022, but Google has since removed it. However, third-party stores like APKAIO.com and APKCombo.com still have the same PDF app, so be extremely careful.
If you liked this article, follow us LinkedIn, Twitter, Facebook, YouTubeAnd Instagram For more cyber security news and topics.